{"id":"https://openalex.org/W4413176572","doi":"https://doi.org/10.1145/3708821.3733888","title":"SoK: The Privacy Paradox of Large Language Models: Advancements, Privacy Risks, and Mitigation","display_name":"SoK: The Privacy Paradox of Large Language Models: Advancements, Privacy Risks, and Mitigation","publication_year":2025,"publication_date":"2025-08-13","ids":{"openalex":"https://openalex.org/W4413176572","doi":"https://doi.org/10.1145/3708821.3733888"},"language":"en","primary_location":{"id":"doi:10.1145/3708821.3733888","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3708821.3733888","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 20th ACM Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3708821.3733888","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071591540","display_name":"Yashothara Shanmugarasa","orcid":"https://orcid.org/0000-0002-6414-9416"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":true,"raw_author_name":"Yashothara Shanmugarasa","raw_affiliation_strings":["CSIRO's Data61, Sydney, Australia"],"raw_orcid":"https://orcid.org/0000-0002-6414-9416","affiliations":[{"raw_affiliation_string":"CSIRO's Data61, Sydney, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075722123","display_name":"Ming Ding","orcid":"https://orcid.org/0000-0002-3690-0321"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Ming Ding","raw_affiliation_strings":["CSIRO's Data61, Sydney, Australia"],"raw_orcid":"https://orcid.org/0000-0002-3690-0321","affiliations":[{"raw_affiliation_string":"CSIRO's Data61, Sydney, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063839073","display_name":"M.A.P. Chamikara","orcid":"https://orcid.org/0000-0002-4286-3774"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Chamikara Mahawaga Arachchige","raw_affiliation_strings":["CSIRO's Data61, Sydney, Australia"],"raw_orcid":"https://orcid.org/0000-0002-4286-3774","affiliations":[{"raw_affiliation_string":"CSIRO's Data61, Sydney, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5071175182","display_name":"Thierry Rakotoarivelo","orcid":null},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Thierry Rakotoarivelo","raw_affiliation_strings":["CSIRO's Data61, Sydney, Australia"],"raw_orcid":"https://orcid.org/0000-0001-7698-6214","affiliations":[{"raw_affiliation_string":"CSIRO's Data61, Sydney, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5071591540"],"corresponding_institution_ids":["https://openalex.org/I1292875679","https://openalex.org/I42894916"],"apc_list":null,"apc_paid":null,"fwci":19.5593,"has_fulltext":false,"cited_by_count":9,"citation_normalized_percentile":{"value":0.99165939,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"425","last_page":"441"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9873999953269958,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10883","display_name":"Ethics and Social Impacts of AI","score":0.98580002784729,"subfield":{"id":"https://openalex.org/subfields/3311","display_name":"Safety Research"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.6982667446136475},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.6547781229019165},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5703072547912598},{"id":"https://openalex.org/keywords/privacy-software","display_name":"Privacy software","score":0.547021746635437},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.49370989203453064},{"id":"https://openalex.org/keywords/privacy-protection","display_name":"Privacy protection","score":0.44181931018829346}],"concepts":[{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.6982667446136475},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.6547781229019165},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5703072547912598},{"id":"https://openalex.org/C509729295","wikidata":"https://www.wikidata.org/wiki/Q7246032","display_name":"Privacy software","level":3,"score":0.547021746635437},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.49370989203453064},{"id":"https://openalex.org/C3017597292","wikidata":"https://www.wikidata.org/wiki/Q25052250","display_name":"Privacy protection","level":2,"score":0.44181931018829346}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3708821.3733888","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3708821.3733888","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 20th ACM Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2506.12699","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2506.12699","pdf_url":"https://arxiv.org/pdf/2506.12699","source":{"id":"https://openalex.org/S4393918464","display_name":"ArXiv.org","issn_l":"2331-8422","issn":["2331-8422"],"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":{"id":"doi:10.1145/3708821.3733888","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3708821.3733888","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 20th ACM Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":40,"referenced_works":["https://openalex.org/W2208157769","https://openalex.org/W2535690855","https://openalex.org/W2781896769","https://openalex.org/W2792641098","https://openalex.org/W3027379683","https://openalex.org/W3034238904","https://openalex.org/W3035261884","https://openalex.org/W3096214574","https://openalex.org/W3098267758","https://openalex.org/W3211753216","https://openalex.org/W3216260999","https://openalex.org/W4206199121","https://openalex.org/W4281806276","https://openalex.org/W4292793781","https://openalex.org/W4319780902","https://openalex.org/W4367053831","https://openalex.org/W4385570888","https://openalex.org/W4385572011","https://openalex.org/W4385573004","https://openalex.org/W4385734162","https://openalex.org/W4386211975","https://openalex.org/W4389520705","https://openalex.org/W4389523936","https://openalex.org/W4389564820","https://openalex.org/W4390490761","https://openalex.org/W4391107696","https://openalex.org/W4391407054","https://openalex.org/W4391974622","https://openalex.org/W4392353733","https://openalex.org/W4392449489","https://openalex.org/W4393035858","https://openalex.org/W4399516266","https://openalex.org/W4401857637","https://openalex.org/W4402671828","https://openalex.org/W4402683378","https://openalex.org/W4403486681","https://openalex.org/W4404782219","https://openalex.org/W4405182239","https://openalex.org/W4408452289","https://openalex.org/W4412130408"],"related_works":["https://openalex.org/W2584827882","https://openalex.org/W2528109871","https://openalex.org/W3027166605","https://openalex.org/W3134350841","https://openalex.org/W3136495642","https://openalex.org/W3129454145","https://openalex.org/W3153181207","https://openalex.org/W2110748233","https://openalex.org/W4225340788","https://openalex.org/W4318485713"],"abstract_inverted_index":{"Large":[0],"language":[1],"models":[2],"(LLMs)":[3],"are":[4],"sophisticated":[5],"artificial":[6],"intelligence":[7],"systems":[8],"that":[9,79],"enable":[10],"machines":[11],"to":[12,63,77],"generate":[13],"human-like":[14],"text":[15],"with":[16,108],"remarkable":[17],"precision.":[18],"While":[19],"LLMs":[20],"offer":[21],"significant":[22],"technological":[23],"progress,":[24],"their":[25],"development":[26],"using":[27],"vast":[28],"amounts":[29],"of":[30,45,57,86,130],"user":[31,41,68,109],"data":[32,60],"scraped":[33],"from":[34,39,67],"the":[35,54,58,91,126],"web":[36],"and":[37,70,117,128,139],"collected":[38],"extensive":[40],"interactions":[42,69],"poses":[43],"risks":[44,66],"sensitive":[46],"information":[47],"leakage.":[48],"Most":[49],"existing":[50,131],"surveys":[51],"focus":[52],"on":[53],"privacy":[55,65,87,98,105,112,119,137],"implications":[56],"training":[59,102],"but":[61],"tend":[62],"overlook":[64],"advanced":[71],"LLM":[72,101,122],"capabilities.":[73],"This":[74],"paper":[75],"aims":[76],"fill":[78],"gap":[80],"by":[81],"providing":[82],"a":[83],"comprehensive":[84],"analysis":[85],"in":[88,100,114],"LLMs,":[89],"categorizing":[90],"challenges":[92,106,120,138],"into":[93],"four":[94],"main":[95],"areas:":[96],"(i)":[97],"issues":[99],"data,":[103],"(ii)":[104],"associated":[107],"prompts,":[110],"(iii)":[111],"vulnerabilities":[113],"LLM-generated":[115],"outputs,":[116],"(iv)":[118],"involving":[121],"agents.":[123],"We":[124],"evaluate":[125],"effectiveness":[127],"limitations":[129],"mitigation":[132],"mechanisms":[133],"targeting":[134],"these":[135],"proposed":[136],"identify":[140],"areas":[141],"for":[142],"further":[143],"research.":[144]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":5}],"updated_date":"2025-12-28T23:10:05.387466","created_date":"2025-10-10T00:00:00"}